Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3639A71/42C01EDAAD5211EE97470BAF775412E6/209064A80ECA11EFA0FB8D6C017001B1.roa
File: 209064A80ECA11EFA0FB8D6C017001B1.roa (raw, json)
Hash identifier: SYHt2ENsggByHF7FNfIiJDtYCTGlxeYoFHTIRbjH6Hc=
Subject key identifier: 56:20:23:EA:DB:7F:3B:70:82:03:9F:05:62:05:D9:DD:5E:89:D8:D1
Certificate issuer: /CN=F3639A71AF/serialNumber=C7FF6ECB0BD2EC12356A5417E31C730B90509411
Certificate serial: 84
Authority key identifier: C7:FF:6E:CB:0B:D2:EC:12:35:6A:54:17:E3:1C:73:0B:90:50:94:11
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/x_9uywvS7BI1alQX4xxzC5BQlBE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3639A71/42C01EDAAD5211EE97470BAF775412E6/209064A80ECA11EFA0FB8D6C017001B1.roa
Signing time: Fri 10 May 2024 12:37:56 +0000
ROA not before: Fri 10 May 2024 12:37:53 +0000
ROA not after: Sat 07 Jan 2034 12:37:53 +0000
asID: 37721
IP address blocks: 154.73.48.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3639A71/42C01EDAAD5211EE97470BAF775412E6/x_9uywvS7BI1alQX4xxzC5BQlBE.crl
rsync://rpki.afrinic.net/repository/member_repository/F3639A71/42C01EDAAD5211EE97470BAF775412E6/x_9uywvS7BI1alQX4xxzC5BQlBE.mft
rsync://rpki.afrinic.net/repository/afrinic/x_9uywvS7BI1alQX4xxzC5BQlBE.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132 (0x84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3639A71AF/serialNumber=C7FF6ECB0BD2EC12356A5417E31C730B90509411
Validity
Not Before: May 10 12:37:53 2024 GMT
Not After : Jan 7 12:37:53 2034 GMT
Subject: CN=663e1524-ee79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d1:ba:23:1c:db:39:d4:8e:c5:cf:b9:b6:25:
06:5a:20:3b:1e:98:f3:6f:a9:6d:70:c7:b9:3f:e6:
0c:c2:64:df:b1:c2:30:98:76:76:fd:cf:05:85:48:
d2:89:72:9b:f1:0f:46:17:83:10:c2:48:31:57:c5:
73:e9:83:7f:0d:e1:2e:86:86:44:1e:62:c8:04:32:
99:86:4d:29:b1:ac:b3:3a:5e:28:76:e9:e6:f8:77:
e4:67:36:81:75:28:e0:b3:15:46:a5:57:e5:63:b8:
f7:7b:a4:11:83:d2:7d:29:ec:6c:5c:87:ea:04:e4:
73:e0:f1:2b:e1:e5:6e:1d:f2:37:16:e1:a6:5c:f1:
b7:20:20:9c:74:26:59:25:82:6c:47:7a:4b:eb:37:
85:64:14:3a:dd:57:c5:82:5b:e0:2b:77:d2:76:d4:
81:28:ab:0d:fa:a8:ac:ed:6e:3a:08:39:11:31:4f:
e7:fb:de:78:68:eb:e2:9e:02:c3:4c:12:65:37:91:
c6:e4:ee:bd:4a:c5:21:bb:59:f4:2c:b8:8d:4f:64:
89:3e:9b:16:2f:c4:7a:df:52:b7:52:1b:d9:ab:ae:
42:3e:2a:d6:17:48:27:55:60:f0:a9:d6:42:c8:11:
13:b3:9e:40:ab:c9:c8:30:8c:4d:4b:b9:ee:b4:55:
50:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:20:23:EA:DB:7F:3B:70:82:03:9F:05:62:05:D9:DD:5E:89:D8:D1
X509v3 Authority Key Identifier:
keyid:C7:FF:6E:CB:0B:D2:EC:12:35:6A:54:17:E3:1C:73:0B:90:50:94:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3639A71/42C01EDAAD5211EE97470BAF775412E6/x_9uywvS7BI1alQX4xxzC5BQlBE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/x_9uywvS7BI1alQX4xxzC5BQlBE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3639A71/42C01EDAAD5211EE97470BAF775412E6/209064A80ECA11EFA0FB8D6C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.73.48.0/22
Signature Algorithm: sha256WithRSAEncryption
26:90:4f:41:6f:31:a8:3c:a4:80:85:ba:f3:17:d8:33:9d:23:
4f:0f:80:fe:0d:85:65:5e:85:19:d8:d5:07:b5:db:93:09:d5:
ae:88:e7:67:dc:2d:78:70:e6:26:6b:58:ca:bb:94:7b:01:5e:
24:ed:22:18:65:0f:4e:9e:ab:57:17:e5:55:40:77:48:e1:82:
c5:59:8f:7f:e3:63:18:27:db:be:fc:18:d7:5b:b6:70:90:eb:
44:56:dc:26:ed:d4:bc:9f:fb:44:dc:04:52:13:47:03:b2:5f:
04:8b:f6:2a:52:36:73:5a:1b:c0:d5:21:dc:6e:75:24:c9:46:
d9:a1:ee:c9:cf:a5:63:5c:1f:d3:df:ff:4a:16:9a:22:1c:f8:
ac:c8:0e:21:a0:be:cd:70:a6:76:0c:2d:12:7e:a8:ca:1d:10:
b4:ac:f3:4b:e6:5a:5b:4b:c3:e6:ac:fc:fa:53:f4:87:1c:b9:
d6:8e:0a:21:ad:92:f4:dc:ea:32:5c:18:ca:27:aa:fa:8f:cb:
d2:28:15:4c:8c:16:95:37:f6:73:6d:3a:5a:1c:4f:f1:15:80:
89:c6:e5:24:73:95:52:02:32:38:50:4a:ec:90:19:ae:14:7d:
02:84:59:82:e3:8b:8c:b7:99:0e:d2:87:34:6d:d2:5c:4f:1e:
c7:a6:12:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:53 2024 by rpki-client on console-fra.rpki-client.org